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WHAT IS CLAIMED IS: 



1 1 . An intelligent policy server method in an Asynchronous 

2 Transfer Mode (ATM) network having an ingress switch and an egress 

3 switch, wherein said ingress switch serves an ingress device operated by 

4 a calling party and said egress switch serves an egress device operated 

5 by a called party, comprising the steps of: 

6 receiving, in said ingress switch, a signaling message from 
0 7 said ingress device; 

k *4 8 providing said signaling message to a signaling intercept 

m 

ill 9 processor associated with said ingress switch; 
*Q 

:g 10 propagating said signaling message to a policy server, said 

UJ 

s: 1 1 policy server including at least one policy profile having a plurality of 

O 

H&- 12 policy features; 

FU 

|ij 13 determining in said policy server, based at least in part on 

14 said signaling message, if a particular policy feature is to be invoked; 

15 if so, determining whether a policy condition associated 

16 with said particular policy feature is satisfied with respect to said 

17 signaling message; and 

1 8 establishing a connection path between said ingress switch 

19 and said egress switch based on said determination that said policy 

20 condition is satisfied by said signaling message. 
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2. The intelligent policy server method in an ATM network as 
set forth in claim 1 , wherein said signaling message comprises a Connect 
message. 

3 . The intelligent policy server method in an ATM network as 
set forth in claim 1, wherein said signaling message comprises an Add 
Party message. 

4. The intelligent policy server method in an ATM network as 
set forth in claim 1, wherein said signaling message comprises a Release 
message. 

5 . The intelligent policy server method in an ATM network as 
set forth in claim 1, wherein said signaling message comprises a Setup 
message. 

6. The intelligent policy server method in an ATM network as 
set forth in claim 5, wherein said particular policy feature comprises a 
source address validation feature. 
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7. The intelligent policy server method in an ATM network as 
set forth in claim 5, wherein said particular policy feature comprises a 
maximum call attempt rate limit feature. 

8 . The intelligent policy server method in an ATM network as 
set forth in claim 5, wherein said particular policy feature comprises a 
destination address screening feature. 

9 . The intelligent policy server method in an ATM network as 
set forth in claim 5, wherein said particular policy feature comprises a 
source address screening feature. 

1 0. The intelligent policy server method in an ATM network as 
set forth in claim 5, wherein said particular policy feature comprises a 
maximum burst size limit feature. 

1 1 . The intelligent policy server method in an ATM network as 
set forth in claim 5, wherein said particular policy feature comprises an 
aggregate bandwidth limit feature. 
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1 2 . The intelligent policy server method in an ATM network as 
set forth in claim 5, wherein said particular policy feature comprises a 
service class selection feature. 

1 3 . The intelligent policy server method in an ATM network as 
set forth in claim 5, wherein said particular policy feature comprises a 
maximum concurrent call limit feature. 
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1 14. An Asynchronous Transfer Mode (ATM) network for 

2 effectuating intelligent policy features with respect to a call to be 

3 established between two parties via a virtual channel connection, 

4 comprising: 

5 an ATM switch serving a customer premises equipment 

6 (CPE) operated by a party with respect to said call; 

7 a signaling intercept processor associated with said ATM 
^ 8 switch for intercepting a signaling message relative to said call; and 

^ 9 a policy server associated with said signaling intercept 

<5 10 processor, said policy server including at least one policy profile having 

;P 11 a plurality of policy features, wherein said policy server operates to 

W 

3 L 12 effectuate a particular policy feature with respect to said call when 

O 

M" 13 triggered by said signaling message received from said signaling 
IV 

fU 14 intercept processor. 

n 

zssr 

a . 

V s *- 

1 15. The ATM network for effectuating intelligent policy 

2 features with respect to a call as set forth in claim 14, wherein said 

3 signaling message comprises a Connect message. 
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16. The ATM network for effectuating intelligent policy 
features with respect to a call as set forth in claim 14, wherein said 
signaling message comprises an Add Party message. 

17. The ATM network for effectuating intelligent policy 
features with respect to a call as set forth in claim 14, wherein said 
signaling message comprises a Release message. 

18. The ATM network for effectuating intelligent policy 
features with respect to a call as set forth in claim 14, wherein said 
signaling message comprises a Setup message. 

19. The ATM network for effectuating intelligent policy 
features with respect to a call as set forth in claim 18, wherein said 
particular policy feature comprises a source address validation feature for 
ensuring that said party is an authorized party for accessing said ATM 
network through a particular network port associated with said CPE. 

20. The ATM network for effectuating intelligent policy 
features with respect to a call as set forth in claim 19, wherein said 
particular network port is a Customer Logical Port. 
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21. The ATM network for effectuating intelligent policy 
features with respect to a call as set forth in claim 19, wherein said 
particular network port is a full physical port. 

22. The ATM network for effectuating intelligent policy 
features with respect to a call as set forth in claim 18, wherein said 
particular policy feature comprises a maximum call attempt rate limit 
feature for monitoring the number of Setup messages received from said 
party over a predetermined period of time. 

23. The ATM network for effectuating intelligent policy 
features with respect to a call as set forth in claim 18, wherein said 
particular policy feature comprises a destination address screening 
feature for defining a plurality of addresses to which said party can 
effectuate said call. 

24. The ATM network for effectuating intelligent policy 
features with respect to a call as set forth in claim 23, wherein said 
destination address screening feature is established for a group of 
subscribers to which said party belongs. 
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25. The ATM network for effectuating intelligent policy 
features with respect to a call as set forth in claim 18, wherein said 
particular policy feature comprises a source address screening feature for 
defining a plurality of addresses from which said call can be initiated to 
said party. 

26. The ATM network for effectuating intelligent policy 
features with respect to a call as set forth in claim 25, wherein said 
source address screening feature is established for a group of subscribers 
to which said party belongs. 

27. The ATM network for effectuating intelligent policy 
features with respect to a call as set forth in claim 18, wherein said 
particular policy feature comprises a maximum burst size limit feature for 
limiting a burst-size request associated with said call. 

28. The ATM network for effectuating intelligent policy 
features with respect to a call as set forth in claim 27, wherein said burst- 
size request comprises the number of packets per second allowed to be 
transmitted to said ATM network with respect to said call. 
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29. The ATM network for effectuating intelligent policy 
features with respect to a call as set forth in claim 27, wherein said burst- 
size request comprises the number of packets per second allowed to be 
received by said party from said ATM network with respect to said call. 

30. The ATM network for effectuating intelligent policy 
features with respect to a call as set forth in claim 18, wherein said 
particular policy feature comprises an aggregate bandwidth limit feature 
for determining a maximum bandwidth allowable for a particular 
network port authorized for use by said party. 

31. The ATM network for effectuating intelligent policy 
features with respect to a call as set forth in claim 18, wherein said 
particular policy feature comprises a service class selection feature for 
specifying a service class with respect to a network port used by said 
party. 

32. The ATM network for effectuating intelligent policy 
features with respect to a call as set forth in claim 31, wherein said 
service class comprises a constant bit-rate (CBR) service. 
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33. The ATM network for effectuating intelligent policy 
features with respect to a call as set forth in claim 31, wherein said 
service class comprises a variable bit-rate (VBR) service. 

34. The ATM network for effectuating intelligent policy 
features with respect to a call as set forth in claim 33, wherein said VBR 
service is a real-time VBR service. 

35. The ATM network for effectuating intelligent policy 
features with respect to a call as set forth in claim 33, wherein said VBR 
service is a non-real-time VBR service. 

36. The ATM network for effectuating intelligent policy 
features with respect to a call as set forth in claim 31, wherein said 
service class comprises an unspecified bit-rate (UBR) service. 
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37. The ATM network for effectuating intelligent policy 
features with respect to a call as set forth in claim 31, wherein said 
service class comprises an available bit-rate (ABR) service. 

38. The ATM network for effectuating intelligent policy 
features with respect to a call as set forth in claim 18, wherein said 
particular policy feature comprises a maximum concurrent call limit 
feature for specifying the total number of calls allowed concurrently with 
respect to a network port used by said party. 
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39. A computer-readable medium operable with an 
Asynchronous Transfer Mode (ATM) network node, said computer- 
readable medium carrying a sequence of instructions provided for 
executing service logic which, when executed by a processing entity 
associated with said ATM network node, causes said ATM network node 
to perform the steps of: 

upon receiving in said ATM network node a signaling 
message with respect to a call from a party, propagating said signaling 
message to a policy server operably associated with said ATM network 
node; and 

upon determining that a policy condition associated with a 
particular policy feature to be invoked is satisfied with respect to said 
signaling message, effectuating a treatment for said call based on said 
particular policy feature. 

40. The computer-readable medium operable with an ATM 
network node as set forth in claim 39, wherein said treatment comprises 
establishing a virtual channel connection between said party and another 
party for said call. 
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41. The computer-readable medium operable with an ATM 
network node as set forth in claim 39, wherein said treatment comprises 
denying a virtual channel connection for said call. 

42. The computer-readable medium operable with an ATM 
network node as set forth in claim 39, wherein said signing message 
comprises a Connect message. 

43. The computer-readable medium operable with an ATM 
network node as set forth in claim 39, wherein said signing message 
comprises an Add Party message. 

44. The computer-readable medium operable with an ATM 
network node as set forth in claim 39, wherein said signing message 
comprises a Release message. 

45. The computer-readable medium operable with an ATM 
network node as set forth in claim 39, wherein said signing message 
comprises a Setup message. 
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46. The computer-readable medium operable with an ATM 
network node as set forth in claim 45, wherein said particular policy 
feature signing message comprises a source address validation feature for 
ensuring that said party is an authorized party for accessing said ATM 
network node through a particular network port associated therewith. 

47. The computer-readable medium operable with an ATM 
network node as set forth in claim 46, wherein said particular network 
port is a Customer Logical Port. 

48. The computer-readable medium operable with an ATM 
network node as set forth in claim 46, wherein said particular network 
port is a full physical port. 

49. The computer-readable medium operable with an ATM 
network node as set forth in claim 45, wherein said particular policy 
feature signing message comprises a maximum call attempt rate limit 
feature for monitoring the number of Setup messages received from said 
party over a predetermined period of time. 
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1 50. The computer-readable medium operable with an ATM 

2 network node as set forth in claim 45, wherein said particular policy 

3 feature comprises a destination address screening feature for defining a 

4 plurality of addresses to which said party can effectuate said call. 

1 51. The computer-readable medium operable with an ATM 

2 network node as set forth in claim 50, wherein said destination address 

3 screening feature is established for a group of subscribers to which said 

Q 

%S 4 party belongs. 

m 
m 

*S 1 52. The computer-readable medium operable with an ATM 

pa 
ssj=a 

y 2 network node as set forth in claim 45, wherein said particular policy 

a: 

P 3 feature comprises a source address screening feature for defining a 

RJ 4 plurality of addresses from which said call can be initiated to said party. 

m 
o 

1 53. The computer-readable medium operable with an ATM 

2 network node as set forth in claim 52, wherein said source address 

3 screening feature is established for a group of subscribers to which said 

4 party belongs. 
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54. The computer-readable medium operable with an ATM 
network node as set forth in claim 45, wherein said particular policy 
feature comprises a maximum burst size limit feature for limiting a burst- 
size request associated with said call. 

55. The computer-readable medium operable with an ATM 
network node as set forth in claim 54, wherein said burst-size request 
comprises the number of packets per second allowed to be transmitted to 
said ATM network node with respect to said call. 

56. The computer-readable medium operable with an ATM 
network node as set forth in claim 54, wherein said burst-size request 
comprises the number of packets per second allowed to be received by 
said party from said ATM network node with respect to said call. 

57. The computer-readable medium operable with an ATM 
network node as set forth in claim 45, wherein said particular policy 
feature comprises an aggregate bandwidth limit feature for determining 
a maximum bandwidth allowable for a particular network port authorized 
for use by said party. 
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1 58. The computer-readable medium operable with an ATM 

2 network node as set forth in claim 45, wherein said particular policy 

3 feature comprises a service class selection feature for specifying a 

4 service class with respect to a particular network port used by said party. 

1 59. The computer-readable medium operable with an ATM 

2 network node as set forth in claim 58, wherein said service class 

3 comprises a constant bit-rate (CBR) service. 

i a s 

si 

ill 1 60. The computer-readable medium operable with an ATM 

ill 

'5 2 network node as set forth in claim 58, wherein said service class 
<£ 

W 3 comprises a variable bit-rate (VBR) service. 

it 

!3 

FU 1 61. The computer-readable medium operable with an ATM 

g 2 network node as set forth in claim 60, wherein said VBR service is a 

3 real-time VBR service. 

1 62. The computer-readable medium operable with an ATM 

2 network node as set forth in claim 60, wherein said VBR service is a 

3 non-real-time VBR service. 
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63. The computer-readable medium operable with an ATM 
network node as set forth in claim 58, wherein said service class 
comprises an unspecified bit-rate (UBR) service. 

64. The computer-readable medium operable with an ATM 
network node as set forth in claim 58, wherein said service class 
comprises an available bit-rate (ABR) service. 

65. The computer-readable medium operable with an ATM 
network node as set forth in claim 45, wherein said particular policy 
feature comprises a maximum concurrent call limit feature for specifying 
the total number of calls allowed concurrently with respect to a particular 
network port used by said party. 
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1 


66. A memory structure for storing data usable in effectuating 


2 


intelligent policy features in an Asynchronous Transfer Mode (ATM) 


3 


network wherein said memory structure is operable with a processing 


4 


entity associated with a policy server node disposed in said ATM 


5 


network, comprising: 


6 


a data structure having a list of subscribers wherein said 


7 


subscribers are authorized to access said ATM network to setup virtual 


8 


channel connections for service; 


o 

<fl 9 


each of said subscribers having an ATM address and a 


ill 10 


Customer Logical Port fCLP^ ID associated therewith* and 


i.5 s 

i ii 


a profile array associated with said subscribers wherein a 


W 12 


policy feature record is populated for each subscriber with at least one 


Bf 

p 13 

i » 


policy feature which indicates a specific treatment for a call to be 


!U 14 

in 


effectuated relative to said each subscriber. 



1=4. 
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67 . The memory structure for storing data usable in effectuating 
intelligent policy features in an ATM network as set forth in claim 66, 
wherein said at least one policy feature is selected from the group 
consisting of: a source address validation feature, a maximum call 
attempt rate limit feature, a destination address screening feature, a 
source address screening feature, a maximum burst size limit feature, an 
aggregate bandwidth limit feature, a service class selection feature, and 
a maximum concurrent call limit feature. 

6 8 . The memory structure for storing data usable in effectuating 
intelligent policy features in an ATM network as set forth in claim 67, 
wherein said virtual channel connections comprise switched connections. 

69 . The memory structure for storing data usable in effectuating 
intelligent policy features in an ATM network as set forth in claim 68, 
wherein said at least one policy feature is invoked by a trigger received 
in a signaling message transmitted with respect to said call. 

70. The memory structure for storing data usable in effectuating 
intelligent policy features in an ATM network as set forth in claim 69, 
wherein said signaling message comprises a Connect message. 
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7 1 . The memory structure for storing data usable in effectuating 
intelligent policy features in an ATM network as set forth in claim 69, 
wherein said signaling message comprises an Add Party message. 

72. The memory structure for storing data usable in effectuating 
intelligent policy features in an ATM network as set forth in claim 69, 
wherein said signaling message comprises a Release message. 

73 . The memory structure for storing data usable in effectuating 
intelligent policy features in an ATM network as set forth in claim 69, 

wherein said signaling message comprises a Setup message. 
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1 74. A source address validation method operable in an 

2 Asynchronous Transfer Mode (ATM) network, comprising the steps of: 

3 assigning a port ID to a Customer Logical Port (CLP) served 

4 by an ATM node disposed in said network; 

5 associating a customer ID with said CLP wherein a plurality 

6 of addresses specified for said customer ID are authorized for use with 

7 said CLP; 

Q 

*Q 8 upon receiving in said ATM node a signaling message from 

0 1 9 a user operating a customer premises equipment (CPE) through said 

? 

*fi 10 CLP, determining if said CPE's address belongs to said plurality of 

■P 

W 1 1 addresses authorized for said CLP; and 

Si 

O 1 2 if so, establishing a virtual channel connection through said 

W 13 ATM network for said user. 

m 

Li- 
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75. A method of restricting call connection attempts by a user 
in an Asynchronous Transfer Mode (ATM) network, comprising the 
steps of: 

specifying a limit on the number of call setup requests 
received over a predetermined period at a Customer Logical Port (CLP) 
served by an ATM node disposed in said network; 

receiving in said ATM node a signaling message from said 
user operating a customer premises equipment (CPE) through said CLP; 

determining if said limit on the number of call setup 
requests is exceeded by said signaling message in said predetermined 
period; and 

if said limit on the number of call setup requests is not 
exceeded by said signaling message in said predetermined period, 
establishing a virtual channel connection through said ATM network for 
said user. 
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76. A method of screening destination addresses in an 
Asynchronous Transfer Mode (ATM) network, comprising the steps of: 

defining a positive list of addresses to which a user is 
allowed to make call connections; 

defining a negative list addresses to which said user is not 
allowed to make call connections; 

receiving in an ATM node a signaling message from said 
user operating a customer premises equipment (CPE) through a 
Customer Logical Port served by said ATM node, said signaling message 
for attempting to setup a call connection to a called party; 

determining if said called party's address belongs to said 
positive list of addresses; and 

if so, establishing said call connection through said ATM 
network for said user. 
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1 


77 A method of screeninc source addresses in an Asynchronous 


2 


Transfer Mode (ATM) network, comprising the steps of: 


3 


defining a positive list of addresses from which call 


4 


connections are allowed to terminate to a user; 


5 


defining a negative list addresses from which call 


6 


connections are not allowed to terminate to said user; 


7 


receiving in an ATM node a signaling message from a 


O 

=i 8 


calling party operating a customer premises equipment (CPE) through a 


ill 9 


Customer Logical Port served by said ATM node, said signaling message 


m 

»fl 10 


for attempting to setup a call connection to said user; 


y ii 


1 ** •f* , 1 11* J 1 11 11 A * 1 

determining if said calling party s address belongs to said 


b 12 


positive list of addresses; and 


iij 13 


if so, establishing said call connection through said ATM 


EU 

!□ 14 


network for said user. 



s ■ ■ 



Page 74 of 80 



PATENT APPLICATION 
RIC-00-016 

78. A method of restricting burst-size requests received for call 
connections in an Asynchronous Transfer Mode (ATM) network, 
comprising the steps of: 

defining a forward burst-size limit allowed for an individual 
call connection established through a Customer Logical Port served by 
an ATM node disposed in said network; 

defining a backward burst-size limit allowed for said 
individual call connection established through said CLP; 

receiving in said ATM node via said CLP a signaling 
message from a user with respect to a particular call connection, said 
signaling message including at least one of a forward burst-size request 
and a backward burst-size request; 

determining if at least one of said forward burst-size request 
and said backward burst-size request exceeds said corresponding burst- 
size limit; 

if so, denying said particular call connection through said 
ATM network for said user. 
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1 79. A class-of-service provisioning method for call connections 

2 in an Asynchronous Transfer Mode (ATM) network, comprising the 

3 steps of: 

4 configuring a plurality of service classes for a Customer 

5 Logical Port served by an ATM node disposed in said network; 

6 receiving in said ATM node via said CLP a signaling 

7 message from a user with respect to a particular call connection, said 

D 

>fl 8 signaling message including a class-of-service request; 

m 9 determining if said class-of-service request is allowed for 

m 

*g 10 said CLP; 

y 1 1 if so, establishing said call connection through said ATM 

Si 

a 12 network for said user. 



Ell 
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1 80. A method of restricting the number of concurrent active call 

2 connections in an Asynchronous Transfer Mode (ATM) network, 

3 comprising the steps of: 

4 defining a concurrent call limit allowed for a Customer 

5 Logical Port served by an ATM node disposed in said network; 

6 receiving in said ATM node via said CLP a signaling 

7 message from a user with respect to a particular call connection; 

O 

=0 8 determining if said concurrent call limit for said CLP would 

N 

IH 9 be exceeded by said signaling message; 

Hi 

kQ 10 if so, denying said particular call connection through said 

,f 

y 1 1 ATM network for said user. 



it 

p 

fy 
fU 
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1 


81. A bandwidth control method operable in an Asynchronous 




2 


Transfer Mode (ATM) network, comprising the steps of: 




3 


specifying a total forward bandwidth allocated for a 




4 


Customer Logical Port (CLP) served by an ATM node disposed in said 




5 


network; 




6 


specifying a total backward bandwidth allocated for said 




7 


CLP; 


u 
• ? 


8 


receiving in said ATM node via said CLP a signaling 


- ! 

q 


9 


message from a user with respect to a particular call connection, said 


10 


signaling message including at least one of a service class request and a 


w 


11 


plurality of bandwidth parameters; 


P 


12 


calculating at least one of a forward bandwidth request and 


!u 


13 


a backward bandwidth request corresponding to said particular call 


|y 
13 


14 


connection; 


K- 


15 


applying an overbooking factor to at least of said forward 




16 


bandwidth request and said backward bandwidth request calculated for 




17 


said particular call connection, thereby generating an adjusted forward 




IS 


bandwidth request and an adjusted backward bandwidth request; 




19 


computing a remaining bandwidth after accounting for 




20 


bandwidth in use in each direction; 
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2 1 comparing said adj usted forward bandwidth request and said 

22 adjusted backward bandwidth request to said remaining bandwidth in 

23 each direction; and 

24 if said adjusted forward and backward bandwidth requests 

25 exceed said remaining bandwidth in each direction, establishing said 

26 particular call connection through said ATM network for said user. 
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